Sync AD from multiple on-premise server to Office 365

active-directory microsoft-office-365 single-sign-on azure-active-directory
5,110

I suggest you read this MS article:

https://docs.microsoft.com/en-us/azure/active-directory/connect/active-directory-aadconnect-topologies

Specifically this section:

Single forest, multiple sync servers to one Azure AD tenant

enter image description here

Having multiple Azure AD Connect sync servers connected to the same Azure AD tenant is not supported, except for a staging server. It's unsupported even if these servers are configured to synchronize with a mutually exclusive set of objects. You might have considered this topology if you can't reach all domains in the forest from a single server, or if you want to distribute load across several servers.

You CAN have one or more STAGING servers, but they are only for DR purposes and really aren't even needed short of remembering your configuration/sync settings.

If you export and document your AADConnect settings/mappings/customization then you can just as easily rebuild a new AADConnect server in a DR scenario.

You CANNOT have more than one AADConnect sync server in your environment connecting to the same Azure AD tenant.

Share:
5,110

Related videos on Youtube

Nikhil Gaur
Author by

Nikhil Gaur

I am programming geek and love to explore new thing in my spare time along with writing my own blog and participating on stack exchange network to answer question and ask new question. My core areas of expertise are .NET, MS SQL, Orcle, TFS, MVC, AWS, Azure and many more to mention. I also have fare knowledge of working with JAVA, Android, Magento, PHP, MySQL Wordpress etc.

Updated on September 18, 2022

Comments

  • Nikhil Gaur
    Nikhil Gaur over 1 year

    I want to migrate active directory accounts from multiple on-premise servers (located on different location and having same domain name) to Office 365.

    I am using Azure AD Connect to sync these accounts and I tested by creating a dummy environment (single server). Everything is working fine. Now the thing I want to know is that can I configure Azure AD Connect similarly on all my servers so that account from all servers will be synced on Office 365.

    Points to note here:

    1. I don't have any conflict in usernames on my server
    2. I already have email account of users on office 365 and want to merge on-premise and Office 365 account based on username/ email address
    3. I want password synchronization
    4. Enable SSO (Single Sign On) for Office 365 account

    My main doubt is about SSO because when I configured Azure AD Connect on my single server dummy environment, it configured SSO so if I will do same thing on all server do I need to do SSO configuration also or I have to leave this step one other servers?

  • Nikhil Gaur
    Nikhil Gaur almost 7 years
    Hi TheCleaner, so you want to say even if all my server are on different locations (not connected to each other) and having separate set of usersnames but because they have same domain name so it will behave like single forest?
  • kralyk
    kralyk almost 7 years
    @NikhilGaur - pretty much. You can't have one O365 tenant and multiple AADConnect servers syncing to that instance, even if it were multiple forests. You'd either need multiple O365 tenants federated together, or you'd need to setup a cross-forest trust and let one server on-premise sync everything for both forests up to a single tenant.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Active Directory passwords not syncing with Office 365
Field to add employee ID in Azure AD/Office365
Merging Office 365 users with AD DS?
Password reset not working because password writeback not working in portal.azure.com
How to integrate Azure AD SSO in flutter app
On premise Active Directory ObjectId is different than Azure Active Directory ObjectId
Get Azure Active Directory Token with username and password
Single Sign On with apache on windows 7 and mod_auth_sspi
How to join a system to a domain controller in Microsoft Azure
What's the upgrade path for ADFS 2.1 to 3.0 (Server 2012 to 2012 R2)